A NULL pointer dereference vulnerability was found in netlink_dump. This issue can occur when the Netlink socket receives the message(sendmsg) for the XFRM_MSG_GETSA, XFRM_MSG_GETPOLICY type message, and the DUMP flag is set and can cause a denial of service or possibly another unspecified impact. Due to the nature of the flaw, privilege escalation cannot be fully ruled out, although it is unlikely.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: redhat
Published: 2023-07-12T08:27:58.635Z
Updated: 2024-08-20T14:30:14.716Z
Reserved: 2023-06-05T13:55:28.745Z
Link: CVE-2023-3106
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2023-07-12T09:15:14.550
Modified: 2024-02-15T16:03:47.757
Link: CVE-2023-3106
Redhat